Guest

Preview Tool

Cisco Bug: CSCvu62371 - certificate can't be loaded by RV340 SSLVPN server

Last Modified

Oct 23, 2020

Products (1)

  • Cisco Small Business RV Series Routers

Known Affected Releases

1.0.3.17

Description (partial)

Symptom:
rv340 fw1.0.3.15 & fw 1.0.03.17

if ssl90days.pem is used for sslvpn, no issue;

if ssls.pem is used for sslvpn, anyconnect client gets rejected. log shows the certificate can't be loaded by sslvpn server, even it can be imported successfully and be used without any problem for web gui access.

 

both certificates has the same common name and SAN name, only difference is the issued party.

 

ssls.pem is issued by a chain of CA, and we have imported all the intermediate CA into the rv340, but still not working.

Conditions:
rv340 fw1.0.3.15 & fw 1.0.03.17

if ssl90days.pem is used for sslvpn, no issue;

if ssls.pem is used for sslvpn, anyconnect client gets rejected. log shows the certificate can't be loaded by sslvpn server, even it can be imported successfully and be used without any problem for web gui access.

 

both certificates has the same common name and SAN name, only difference is the issued party.

 

ssls.pem is issued by a chain of CA, and we have imported all the intermediate CA into the rv340, but still not working.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.